Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft
File: zQPRPdJvAESig_xqEedWoqK1aRs.mft (raw, json)
Hash identifier: 034OgGEWe19ie2pheWHw0dnzbRnu2tKYiKpdw2UBO0Y=
Subject key identifier: 30:16:AE:F3:58:71:EC:05:F5:E2:70:E6:DD:A9:7A:71:CE:C9:96:43
Authority key identifier: CD:03:D1:3D:D2:6F:00:44:A2:83:FC:6A:11:E7:56:A2:A2:B5:69:1B
Certificate issuer: /CN=cd03d13dd26f0044a283fc6a11e756a2a2b5691b
Certificate serial: 01992CD96636623E75D6755426395478ED3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zQPRPdJvAESig_xqEedWoqK1aRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft
Manifest number: 017C
Signing time: Tue 09 Sep 2025 05:01:08 +0000
Manifest this update: Tue 09 Sep 2025 05:01:08 +0000
Manifest next update: Wed 10 Sep 2025 05:01:08 +0000
Files and hashes: 1: yLKyshLk5Y8qo2HfRt0bfJWqtcI.roa (hash: CLpNYZZ3o+zwOI76Lm9XQZQEHlIeProjGVosiuqFQCw=)
2: zQPRPdJvAESig_xqEedWoqK1aRs.crl (hash: 74fHV6l+HsYFwMlrFIyx9VO3TLw6fsVIKqzVHjkqAW8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft
rsync://rpki.ripe.net/repository/DEFAULT/zQPRPdJvAESig_xqEedWoqK1aRs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 05:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2c:d9:66:36:62:3e:75:d6:75:54:26:39:54:78:ed:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd03d13dd26f0044a283fc6a11e756a2a2b5691b
Validity
Not Before: Sep 9 05:01:08 2025 GMT
Not After : Sep 10 05:01:08 2025 GMT
Subject: CN=3016aef35871ec05f5e270e6dda97a71cec99643
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:45:89:71:d2:63:42:03:62:df:50:d4:69:4b:
58:1a:b6:9d:e2:b4:25:f8:b4:cf:45:b9:c0:bd:20:
ab:bf:65:ad:3c:db:ae:1d:d0:a3:b3:0f:1b:9a:08:
23:19:a5:8a:0f:53:e1:3e:71:35:72:31:bd:f1:0a:
14:8f:66:83:a7:07:42:1b:55:f6:3e:a1:18:80:6f:
7d:e6:f9:e6:1f:34:37:2c:26:52:1e:df:f8:56:39:
d5:98:6d:cf:f9:d8:2d:12:d3:eb:83:fe:6d:95:7a:
8c:4b:b7:54:60:4a:cb:a8:75:5a:79:a1:ae:ad:83:
a6:24:eb:a5:19:db:70:e3:cf:4d:39:65:4b:89:de:
a6:ec:2c:c4:6c:61:b4:5a:bd:ee:27:2e:59:d2:81:
70:b7:46:4d:71:d3:67:18:9d:c7:ef:86:ca:c3:95:
df:63:c5:96:66:33:7c:07:25:e7:2d:e4:20:c8:cc:
5e:8c:27:b1:86:53:9d:16:9a:24:01:b1:63:22:55:
38:c1:76:7f:07:03:a3:2c:5e:6b:3f:aa:8c:a4:23:
29:eb:4d:76:f8:f6:dc:de:69:94:ff:a6:0c:e4:4a:
1d:04:0d:82:1a:4c:54:be:fc:86:b0:1e:06:eb:d1:
f5:05:c4:31:a5:93:3d:78:04:4f:6a:34:0a:b9:0e:
27:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:16:AE:F3:58:71:EC:05:F5:E2:70:E6:DD:A9:7A:71:CE:C9:96:43
X509v3 Authority Key Identifier:
keyid:CD:03:D1:3D:D2:6F:00:44:A2:83:FC:6A:11:E7:56:A2:A2:B5:69:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zQPRPdJvAESig_xqEedWoqK1aRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:fc:2b:22:ec:03:92:14:03:71:ce:fb:64:d3:4c:fd:7f:74:
c3:da:f1:48:64:4c:6b:6c:84:79:60:15:ae:2f:0d:d3:6e:1b:
59:51:75:61:72:fc:12:cf:21:ab:9e:d1:97:c6:4b:19:aa:dc:
10:68:0c:c6:96:e8:1d:2e:cd:eb:14:88:01:37:90:fd:f0:61:
3d:01:a2:78:b7:3b:4d:dd:d7:d1:a0:16:94:d3:7d:bb:f5:c1:
61:58:32:a1:ec:56:66:44:ca:67:2e:87:27:fc:5a:f7:95:7d:
a6:57:e4:75:cd:e0:32:74:66:6b:85:a0:52:c5:db:4f:21:0a:
e0:d1:e2:3f:10:ae:24:aa:66:7b:8a:c6:ff:01:39:03:2a:11:
3f:e9:b0:31:27:e5:6c:3c:56:36:c4:33:76:ca:43:fb:61:fa:
a8:20:10:0a:de:70:d9:a3:b1:68:b0:46:62:5a:b6:f2:8a:2f:
66:2c:62:35:68:2a:13:8c:f1:6f:91:4a:fd:67:4f:59:e1:50:
cb:af:f0:b2:33:8a:28:b7:79:72:d9:ff:ab:f9:93:5f:16:27:
91:0a:85:b9:41:cf:37:00:ce:77:9f:c0:77:17:ed:e2:c0:55:
57:ca:3d:7c:f0:3a:36:b4:67:3d:ec:75:7e:72:d9:07:39:12:
7b:81:2b:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 13:30:42 2025 by rpki-client